cache deny all

forwarded_for off

request_header_access Allow allow all 
request_header_access Authorization allow all 
request_header_access WWW-Authenticate allow all 
request_header_access Proxy-Authorization allow all 
request_header_access Proxy-Authenticate allow all 
request_header_access Cache-Control allow all 
request_header_access Content-Encoding allow all 
request_header_access Content-Length allow all 
request_header_access Content-Type allow all 
request_header_access Date allow all 
request_header_access Expires allow all 
request_header_access Host allow all 
request_header_access If-Modified-Since allow all 
request_header_access Last-Modified allow all 
request_header_access Location allow all 
request_header_access Pragma allow all 
request_header_access Accept allow all 
request_header_access Accept-Charset allow all 
request_header_access Accept-Encoding allow all 
request_header_access Accept-Language allow all 
request_header_access Content-Language allow all 
request_header_access Mime-Version allow all 
request_header_access Retry-After allow all 
request_header_access Title allow all 
request_header_access Connection allow all 
request_header_access Proxy-Connection allow all 
request_header_access User-Agent allow all 
request_header_access Cookie allow all 
request_header_access All deny all

acl SSL_ports port 443
acl SSL_ports port 22
acl SSL_ports port 80
acl SSL_ports port 8080
acl SSL_ports port 992
acl SSL_ports port 1194
acl SSL_ports port 995
acl SSL_ports port 5555
acl Safe_ports port 80      # http
acl Safe_ports port 8080    # http-alt
acl Safe_ports port 21      # ftp
acl Safe_ports port 22      # ssh
acl Safe_ports port 443     # https
acl Safe_ports port 70      # gopher
acl Safe_ports port 210     # wais
acl Safe_ports port 1025-65535  # unregistered ports
acl Safe_ports port 280     # http-mgmt
acl Safe_ports port 488     # gss-http
acl Safe_ports port 591     # filemaker
acl Safe_ports port 777     # multiling http
acl Safe_ports port 3128
acl Safe_ports port 992
acl Safe_ports port 995
acl Safe_ports port 5555
acl Safe_ports port 1194

acl localnet src 192.168.0.0/16
acl localnet src 172.16.0.0/12
acl localnet src 10.0.0.0/8

acl deny_sony dstdomain "/etc/squid/sony-domains.txt"

acl allowed_hosts dstdomain  .youtube.com .ytimg.com .doubleclick.net .googlevideo.com 
acl allowed_hosts dstdomain .twitter.com
acl allowed_hosts dstdomain .google.com
acl allowed_hosts dstdomain .facebook.com
acl allowed_hosts dstdomain .viber.com
acl allowed_hosts dstdomain .softether.net
acl allowed_hosts dstdomain .gmail.com .flickr.com .yimg.com .digg.com .fbcdn.net .doubleclick.net .googlevideo.com .amazonaws.com .1e100.net
acl allowed_hosts dstdomain .cmru.info .team28devs.com

acl allowed_ip dst 127.0.0.0/8
acl allowed_ip dst 123.123.123.123

acl CONNECT method CONNECT
http_access allow localhost manager
http_access allow localhost
http_access allow localnet
http_access allow localnet CONNECT
http_access allow all CONNECT allowed_hosts
http_access allow all allowed_hosts
http_access allow all allowed_ip
http_access allow all CONNECT allowed_ip
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access deny manager
http_access deny all
http_port 0.0.0.0:3128

coredump_dir /var/spool/squid